[MAVEN:GHSA-F7FQ-WP2X-JC25] Jenkins WildFly Deployer Plugin vulnerable to path traversal
Severity
Moderate
Affected Packages
1
CVEs
1
Jenkins WildFly Deployer Plugin 1.0.2 and earlier implements functionality that allows agent processes to read arbitrary files on the Jenkins controller file system.
This vulnerability is only exploitable in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier. See the LTS upgrade guide.
Package | Affected Version |
---|---|
pkg:maven/org.jenkins-ci.plugins/wildfly-deployer | <= 1.0.2 |
- ID
- MAVEN:GHSA-F7FQ-WP2X-JC25
- Severity
- moderate
- URL
- https://github.com/advisories/GHSA-f7fq-wp2x-jc25
- Published
-
2022-09-22T00:00:28
(2 years ago) - Modified
-
2023-02-02T05:03:03
(19 months ago) - Rights
- Maven Security Team
- Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:maven/org.jenkins-ci.plugins/wildfly-deployer | org.jenkins-ci.plugins | wildfly-deployer | <= 1.0.2 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |